Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json)
Hash identifier: bUoVtapQMt9M1L4te+bjbbM/wxFAJeP2YuGCGSD+LG8=
Subject key identifier: 74:2C:C5:B9:98:93:53:F8:62:19:00:EE:8E:27:56:03:52:4E:A0:69
Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7
Certificate serial: 019CAD907E69529FF9EA31BACBA2E26FCB31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
Manifest number: 1732
Signing time: Mon 02 Mar 2026 08:00:53 +0000
Manifest this update: Mon 02 Mar 2026 08:00:53 +0000
Manifest next update: Tue 03 Mar 2026 08:00:53 +0000
Files and hashes: 1: AfDUmyK_-yRdfu3oY0w-ZmuI_n8.roa (hash: LsPuKpZEctSg8i+4uevFKA+sYuA+iu39H7g8hC66rsA=)
2: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: 6I9NJBm5zSYVAlAZS9FKFcF7cVYOA44xqkDwE7gh6ks=)
3: REMby4Ya31OA35rY4teZSHIa0ew.roa (hash: XyeGvAoenWA3MJIYVq931n9fMFmepWjFnS5c3uEtCFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:7e:69:52:9f:f9:ea:31:ba:cb:a2:e2:6f:cb:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Validity
Not Before: Mar 2 08:00:53 2026 GMT
Not After : Mar 3 08:00:53 2026 GMT
Subject: CN=742cc5b9989353f8621900ee8e275603524ea069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:4e:5a:bd:2a:fe:a4:16:23:9d:6e:25:62:ef:
1c:b3:50:0a:8e:28:65:a4:f9:a4:12:75:57:fd:a0:
7d:92:55:b2:01:d6:b3:62:3f:e4:16:a7:d0:c3:4d:
9f:e1:32:5b:fa:a4:1c:5d:12:e6:5e:cc:a6:04:11:
3c:2e:f1:f4:50:4e:fc:a1:93:24:00:9b:19:ac:b1:
5c:ec:87:d9:df:3d:37:55:a8:c7:63:97:12:db:9b:
99:f2:e6:b4:d7:61:4a:b8:83:69:28:61:12:d2:44:
b6:8f:27:a1:69:3a:e8:05:71:e9:85:1b:b5:c8:b3:
64:44:86:a8:de:85:90:a4:70:06:56:33:b2:01:2c:
c5:c5:3f:f6:e4:d2:a3:71:38:99:a7:48:f0:f3:cf:
4a:85:d0:5e:25:64:12:16:2d:60:15:56:1a:25:e5:
e2:83:b8:a9:92:3a:42:f5:f9:2f:8e:36:a1:28:a8:
39:8a:2e:27:e4:10:e4:1a:b1:85:dc:82:9f:69:e1:
4d:23:c7:97:80:17:6f:a1:93:71:76:77:21:f5:25:
03:f5:f8:07:58:f6:5d:dd:cb:f7:b5:f5:c1:90:fa:
54:86:4b:52:85:58:f4:09:b7:16:69:81:a9:8c:a1:
35:6c:ce:df:be:12:04:18:83:0b:bc:5e:5a:55:dd:
06:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2C:C5:B9:98:93:53:F8:62:19:00:EE:8E:27:56:03:52:4E:A0:69
X509v3 Authority Key Identifier:
keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:2a:39:b2:e2:01:78:fc:d7:a6:7e:8f:f5:00:1c:b0:9a:13:
ce:d1:79:f1:92:cd:5b:1a:54:f4:7d:12:c9:61:b9:fc:81:a2:
b2:cd:e8:61:c4:7d:96:8e:37:a1:4b:22:ad:4c:cd:7f:ac:ea:
00:fd:fe:1b:a4:77:03:36:7e:00:e1:6b:75:af:25:f8:4e:f9:
37:3e:8e:57:0c:03:24:3a:5b:8a:d4:f3:80:80:99:ee:bd:2a:
79:5a:1d:ea:0a:16:2c:2d:eb:71:e3:78:ba:b0:f5:3b:66:db:
a9:f8:af:dd:57:b2:48:97:3b:21:12:3a:13:b8:61:0f:ea:8b:
60:22:c6:ce:37:ba:eb:70:74:c3:af:0e:a7:f0:2e:f0:79:af:
4c:6d:44:1c:e2:5c:e9:df:08:b7:6a:cd:17:e6:b9:69:ff:9f:
68:99:8c:60:5c:cc:86:c3:56:e9:ac:81:e4:9d:08:6c:7d:b7:
a0:a2:f1:37:ed:6f:a3:eb:53:df:86:8e:0b:c3:31:73:6f:b2:
2e:b4:a7:3d:4a:f1:dc:f2:d5:eb:80:c2:18:39:c8:c3:26:d1:
51:ba:14:ce:ef:75:1b:57:55:30:24:a4:1e:b3:2e:49:4d:8a:
f3:20:9c:cb:81:d8:68:2f:9a:75:e9:02:c1:d4:49:24:f5:33:
05:1a:d1:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytkH5pUp/56jG6y6Lib8sxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NzI4ZTliZDM3Mzk5ZGY5ZmZhZTU4N2JkMDY4ODRiMzUw
YTY1YjcwHhcNMjYwMzAyMDgwMDUzWhcNMjYwMzAzMDgwMDUzWjAzMTEwLwYDVQQD
Eyg3NDJjYzViOTk4OTM1M2Y4NjIxOTAwZWU4ZTI3NTYwMzUyNGVhMDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiE5avSr+pBYjnW4lYu8cs1AKjihl
pPmkEnVX/aB9klWyAdazYj/kFqfQw02f4TJb+qQcXRLmXsymBBE8LvH0UE78oZMk
AJsZrLFc7IfZ3z03VajHY5cS25uZ8ua012FKuINpKGES0kS2jyehaTroBXHphRu1
yLNkRIao3oWQpHAGVjOyASzFxT/25NKjcTiZp0jw889KhdBeJWQSFi1gFVYaJeXi
g7ipkjpC9fkvjjahKKg5ii4n5BDkGrGF3IKfaeFNI8eXgBdvoZNxdnch9SUD9fgH
WPZd3cv3tfXBkPpUhktShVj0CbcWaYGpjKE1bM7fvhIEGIMLvF5aVd0GswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHQsxbmYk1P4YhkA7o4nVgNSTqBpMB8GA1UdIwQY
MBaAFDhyjpvTc5nfn/rlh70GiEs1CmW3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9iZTNlMjUtODgxYy00YWVjLWE5MzIt
ZjhjZmEzM2Q2ODRlLzEvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy9iZTNlMjUtODgxYy00YWVjLWE5MzItZjhjZmEzM2Q2ODRl
LzEvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAByo5suIB
ePzXpn6P9QAcsJoTztF58ZLNWxpU9H0SyWG5/IGiss3oYcR9lo43oUsirUzNf6zq
AP3+G6R3AzZ+AOFrda8l+E75Nz6OVwwDJDpbitTzgICZ7r0qeVod6goWLC3rceN4
urD1O2bbqfiv3VeySJc7IRI6E7hhD+qLYCLGzje663B0w68Op/Au8HmvTG1EHOJc
6d8It2rNF+a5af+faJmMYFzMhsNW6ayB5J0IbH23oKLxN+1vo+tT34aOC8Mxc2+y
LrSnPUrx3PLV64DCGDnIwybRUboUzu91G1dVMCSkHrMuSU2K8yCcy4HYaC+adekC
wdRJJPUzBRrRYA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:15:52 2026 by rpki-client